DE102015209400B4 - Handling of application identifiers of electronic subscriber identity modules - Google Patents

Abstract

A method of accessing electronic subscriber identity module (eSIM) applications managed by an embedded universal integrated circuit card (eUICC), the method comprising:at the eUICC:receiving, from a baseband processor, a request to access an application of a first eSIM managed by the eUICC, the application being associated with an application identifier (AID) shared by an application of a second eSIM; andin response to the request:assigning, to the first eSIM, a logical channel corresponding to both:an eSIM identifier (eSIM ID) associated with the first eSIM and the AID; andallowing the baseband processor to access the application of the first eSIM via the logical channel,wherein the baseband processor simultaneously accesses applications of multiple active eSIMs within the eUICC using different logical channels.

Description

Area

The described embodiments relate generally to embedded universal integrated circuit cards (eUICC) and electronic subscriber identity modules (eSIMs). In particular, the described embodiments include enabling a mobile device to access eSIM content in a multi-eSIM environment.

background

Most mobile devices are configured to receive and operate removable universal integrated circuit cards (UICC) that allow the mobile devices to access services provided by mobile network operators (MNO). will. In particular, each UICC includes at least one microprocessor and a read only memory (ROM), where the ROM is configured to store various gadgets and authentication data that the mobile device can use to register with and communicate with the MNOs to interact. Typically, a UICC takes the form of a small removable card (e.g. a SIM card) arranged to store a single MNO profile and arranged to be inserted into a UICC receiving slot located in a mobile device is included. However, in recent implementations, UICCs are embedded directly into mobile device motherboards and are configured to store multiple MNO profiles, referred to herein as electronic SIMs (eSIMs). For example, an embedded UICC (eUICC) can store one eSIM for a local MNO and another eSIM for an international MNO. In particular, these eUICCs provide several advantages over traditional, removable UICCs. For example, some eUICCs include rewritable memory that can allow eSIM updates to access advanced features provided by the MNOs. The eUICCs also eliminate the need to include UICC receiving indents within mobile devices. The implementation of eUICCs thus not only increases the flexibility of mobile devices but also simplifies their design and frees up space for other components.

Although eUICCs can provide many advantages over traditional, removable UICCs, implementing eUICCs presents new challenges in terms of how eSIM content is accessed by mobile devices. For example, MNOs share many of the same properties with others, and as a result, eSIMs can often include applications that share the same application identifier (AID). Consequently, a mobile device whose eUICC includes two or more eSIMS that share similarities may not be able to successfully select and access an application of a particular one of the two or more eSIMs. More specifically, existing protocols for accessing applications involve referring only to the AID, which is not sufficient for the mobile device to access an application of a particular eSIM because the AID alone cannot uniquely identify the application of the particular eSIM that the application includes. Accordingly, there is a need to enable a mobile device - particularly a processor included in a mobile device - to access specific eSIM content, such as an application of a particular eSIM in a multi-eSIM environment.

The pamphlet WO 2013/038236 A1 discloses various methods for providing a software smart card environment composed of multiple virtual UICCs (vUICC). The pamphlet US 2013/0023309 A1 refers to an application selection for a multi-SIM environment.

The pamphlet US 2014/0073375 A1 discloses devices and methods for managing and sharing data across multiple access control clients in devices.

summary

An eUICC can store multiple eSIMs and each eSIM can store its own content (e.g. applications and file structures). However, with this configuration of multiple eSIMs on the eUICC, a problem arises: how to identify and access the content of different eSIMs stored on the same eUICC. For example, if the mobile device uses an existing interface to send a read command for a file identified by a file identifier (FID), there may be a conflict because the same FID may exist within multiple eSIMs. Consequently, the eUICC may not be able to access the file for a specific eSIM using only the FID. The embodiments set forth herein address this problem by introducing a special command sent to the eUICC by the mobile device tion can be transferred. In particular, the special command includes an identifier that uniquely identifies an eSIM to be selected and that can instruct the eUICC to activate or deactivate content contained in the eSIM. After selecting an eSIM, the mobile device can view the content (eg, applications and file structures) of the eSIM. In this way, the mobile device can access the content of a specific eSIM stored by an eUICC even if there are similarities with other eSIMs stored by the eUICC.

Additionally, conflicts can occur in the eUICC when attempting to access an application based solely on an application identifier (AID) associated with the application. To address this deficiency, logical channels can be used to separate the way eSIMs are accessed through the eUICC. Logical channels are defined in existing standards so that the mobile device can open multiple logical channels to access different applications of an eSIM. More specifically, the existing standards dictate that an application of an eSIM must first be selected on a logical channel before the application can be accessed. As a result, an operating system (OS) running on the eUICC already knows the eSIM that will be selected on a logical channel. The embodiments set forth herein extend this functionality to allow selection of different eSIMs on different logical channels (as opposed to the applications themselves). Each application can then be uniquely identified using the SELECT (eSIM ID, AID) command. Mobile device endpoints (e.g., baseband processors) that interact with the eUICC may be aware of the different eSIMs managed by the eUICC, e.g., by managing the different eSIM IDs. In this way, the processor in the mobile device can access specific applications from multiple eSIMs in the eUICC at the same time.

This summary is provided only for the purpose of summarizing some example embodiments so as to provide a basic understanding of some aspects of the subject matter described herein. Accordingly, it will be understood that the features described above are only examples and should not be construed to limit in any way the scope or spirit of the subject matter described herein. Other features, aspects, and advantages of the subject matter described herein will become apparent from the following detailed description, figures, and claims.

character list

• 1 veranschaulicht ein Blockdiagramm unterschiedlicher Komponenten eines drahtlosen Systems, das einen MNO, eine Basisstation und eine mobile Vorrichtung beinhaltet und das eingerichtet ist, um die verschiedenen Techniken, die hierin beschrieben werden, gemäß einiger Ausführungsformen zu implementieren.
• 2 veranschaulicht ein Blockdiagramm einer detaillierteren Ansicht bestimmter Komponenten des Systems der 1 gemäß einiger Ausführungsformen.
• 3A veranschaulicht ein Blockdiagramm eines eSIM gemäß einiger Ausführungsformen.
• 3B veranschaulicht ein Blockdiagramm einer eUICC, die mehrere eSIMs speichert gemäß einiger Ausführungsformen.
• 3C veranschaulicht eine detaillierte Ansicht einer Dateistruktur einer Anwendung gemäß einiger Ausführungsformen.
• 4 veranschaulicht ein Zeitablaufdiagramm zum Auswählen einer Anwendung eines spezifischen eSIM, das in einer eUICC beinhaltet ist, gemäß einiger Ausführungsformen.
• 5A veranschaulicht ein Zeitablaufdiagramm zum Auswählen und zum Zugreifen auf eine Anwendung eines eSIM aus mehreren eSIMs, die die Anwendungen beinhalten, gemäß einiger Ausführungsformen.
• 5B veranschaulicht eine Rahmenstruktur, die das Zeitablaufdiagramm der 5A unterstützt, gemäß einiger Ausführungsformen.
• 5C veranschaulicht ein Flussdiagramm für ein Verfahren, das sich auf 5A und 5B bezieht, gemäß einiger Ausführungsformen.
• 6A veranschaulicht ein Blockdiagramm einer eUICC, die mehrere eSIMs mehrerer eSIM-Anbieter, gemäß einiger Ausführungsformen speichert.
• 6B veranschaulicht ein Blockdiagramm einer eUICC, die mehrere eSIMs speichert, die durch einen Endpunkt unter Verwendung logischer Kanäle ausgewählt werden, gemäß einiger Ausführungsformen.
• 6C veranschaulicht ein Flussdiagramm für ein Verfahren, das sich auf die 6A und die 6B bezieht, gemäß einiger Ausführungsformen.
• 7 veranschaulicht eine detaillierte Ansicht einer Rechenvorrichtung, die verwendet werden kann, um die verschiedenen Komponenten, die hierin beschrieben werden, gemäß einiger Ausführungsformen zu implementieren.

The included drawings are for illustrative purposes and only to provide examples of possible structures and arrangements of the disclosed inventive devices and methods for providing wireless computing devices. These drawings in no way limit any changes in form and detail that can be made to the embodiments by those skilled in the art without departing from the spirit and scope of the embodiments. The embodiments will be readily understood from the following detailed description when read in conjunction with the accompanying drawings, wherein like reference numbers indicate similar structural elements.

• 1 1 illustrates a block diagram of various components of a wireless system that includes an MNO, a base station, and a mobile device and that is configured to implement the various techniques described herein, according to some embodiments.
• 2 FIG. 12 illustrates a block diagram of a more detailed view of certain components of the system of FIG 1 according to some embodiments.
• 3A 12 illustrates a block diagram of an eSIM, according to some embodiments.
• 3B 12 illustrates a block diagram of an eUICC storing multiple eSIMs, according to some embodiments.
• 3C 1 illustrates a detailed view of a file structure of an application, according to some embodiments.
• 4 12 illustrates a timing diagram for selecting an application of a specific eSIM included in an eUICC, according to some embodiments.
• 5A FIG. 12 illustrates a timing diagram for selecting and accessing an application of an eSIM from multiple eSIMs containing the applications, according to some embodiments.
• 5B illustrates a frame structure representing the timing diagram of the 5A supported, according to some embodiments.
• 5C illustrates a flowchart for a method relating to 5A and 5B relates, according to some embodiments.
• 6A 12 illustrates a block diagram of an eUICC storing multiple eSIMs from multiple eSIM providers, according to some embodiments.
• 6B 12 illustrates a block diagram of an eUICC storing multiple eSIMs selected by an endpoint using logical channels, according to some embodiments.
• 6C illustrates a flowchart for a method pertaining to the 6A and the 6B relates, according to some embodiments.
• 7 1 illustrates a detailed view of a computing device that may be used to implement the various components described herein, according to some embodiments.

Detailed description

Representative applications of devices and methods according to the presently described embodiments are provided in this section. These examples are only provided to add context and help in understanding the described embodiments. It will therefore be apparent to those skilled in the art that the presently described embodiments may be practiced without some or all of these specific details. In other instances, well known method steps have not been described in detail to avoid unnecessarily obscuring the presently described embodiments. Other applications are possible, so the following examples should not be construed as limiting.

A UICC is a smart card used in mobile terminals for cellular networks, including Universal Mobile Telecommunications Systems (UMTS) and Long Term Evolution (LTE) networks. In particular, a UICC authenticates a subscriber to a cellular network while ensuring the integrity and security of the subscriber's personal data. The UICC also stores applications for both the MNO and end-user uses for the correct deployment of mobile services. The UICC is a generic multi-application platform capable of hosting multiple applications in parallel.

The IUCC includes a SIM, which is an integrated circuit that stores an international mobile subscriber identity (IMSI) and a related key that is used to register a subscriber on a mobile telephone device (such as a cell phone). identify and authenticate. In initial implementations, a SIM circuit is embedded in a removable plastic card. This plastic card may be referred to as a "SIM card" and can be transferred between different mobile devices. A SIM card includes a unique serial number, an integrated circuit card ID (ICCID), an international mobile subscriber identity (IMSI), security authentication and encryption information, temporary information relating to the local area network obtain, a list of services to which the user has access and authentication information (e.g. passwords).

Over time, the role of the UICC has evolved and it has become the only MNO-owned part of the network that resides in the hands of the participants. Accordingly, the UICC can be a useful tool for an MNO to securely provide services to subscribers. And, due to its portability and ability to work in many mobile handsets, the UICC enables the MNO to offer network-specific services and customizations regardless of the mobile phone used. This uniqueness of the UICC allows for a variety of new advanced features, all to the benefit of the MNO and the subscriber.

As previously mentioned, UICCs are embedded directly into mobile device motherboards (i.e. eUICCs) and may be set up to manage multiple Electronic SIMs (eSIMs), e.g., one eSIM for a local MNO and another eSIM for an international MNO. These eUICCs can provide numerous advantages over traditional, removable UICCs. For example, some eUICCs include rewritable memory that allows eSIM updates to access advanced features provided by the MNOs. In particular, each eSIM can have its own file structure and applications. The problem to be solved is therefore how to identify and access the content of multiple eSIMs on the same eUICC. For example, if the mobile device uses an existing interface to send a read command for a file identified by a FID, a conflict may exist since the same FID could exist within another eSIM and be relevant to another eSIM. Consequently, the eUICC cannot know how to access the particular file identified by the FID.

Some other considerations include the following: Standards for UICC implementations specify that AIDs are used to identify applications installed on the SIMs. An AID includes a 5-byte Application Provider ID and an 11-byte (or less) protected AID. The AID is determined during card provisioning, eg during a manufacturing process by a vendor. A problem with the eUICC implementation concerns the ambiguity of the AIDs in a multi-eSIM environment. As previously set forth herein, an eUICC may include multiple eSIMs. In particular, these eSIMs may come from different uncoordinated sources, eg AT&T and T-Mobile. In some cases, the different sources may use the same AID, so the uniqueness of the AID is not preserved across the different eSIMs. As a result, a conflict may arise if the eUICC includes multiple eSIMs whose applications share a common AID.

To address the aforementioned issues, the embodiments described herein present a technique whereby the mobile device can send a special command to the eUICC that includes an identifier that uniquely identifies an eSIM managed by the eUICC. Specifically, the special command can direct the eUICC to enable or disable the content contained in the eSIM. After the eSIM is selected, the eSIM's file structures and applications can be accessed by the mobile device using existing commands (e.g., READ). The mobile device can select a different eSIM by first deactivating the active eSIM and then activating the different eSIM. The foregoing technique may also provide compatibility benefits such as an eUICC with an active eSIM can be installed in an old device and successfully operated in the old device. For this functionality the eUICC has to store the last selected eSIM and when booting up the old device the eUICC can automatically select the previously selected eSIM.

As previously stated herein, logical channels are defined in existing standards such that the mobile device can open different logical channels to access different applications in an eSIM. The embodiments set forth herein extend the functionality to allow a choice of different eSIMs (as opposed to their applications) on different logical channels. This feature can allow the mobile devices to access multiple eSIMs and their associated content at the same time. Related to accessing the same application in a multi-eSIM environment, a solution can be defined using the external entity coordination principles of the standards. The principles include: 1) AIDs within the same eSIM are unique, i.e. guaranteed by the eSIM vendor (similar to existing UICC standards) and 2) AIDs from different eSIM vendors can be duplicated on the eUICC.

With the eUICC OS handling, a mobile device can open multiple logical channels to an eUICC and can avoid AID conflicts. In particular, the application's associated eSIM is first associated with a given logical channel before the application can be selected. As a result, the eUICC OS can know which eSIM is associated with an AID on a given logical channel. Each application can be uniquely identified by the SELECT (eSIM ID, AID) command. Endpoints (i.e. baseband processors) can be aware of the different eSIMS managed by the eUICC, e.g. by managing the different eSIM IDs. This solution can be implemented without major changes to the interface.

Accordingly, the previous approaches provide techniques and systems to identify and access the content of different eSIMS in an eUICC. A more detailed discussion is set forth below and described in connection with FIGS 1 until 2 , 3A , 3B , 3C , 4 , 5A , 5B , 5C , 6A , 6B , 6C and 7 , which illustrate detailed diagrams of systems and methods that can be used to implement these techniques.

• • AID - Anwendungsidentifikator (Application Identifier), der eine Anwendung innerhalb einer UICC identifiziert. Der AID kann einen registrierten Anwendungsanbieteridentifikator (registered application provider identifier, RID) mit 5 Bytes und eine geschützte Anwendungsidentifikatorerweiterung (proprietary application identifier extension, PIX) von bis zu 11 Bytes beinhalten. Der AID einer Anwendung kann auf einer gegebenen UICC eindeutig sein. Der AID wird während der Kartenbereitstellung bestimmt, z. B. durch ein Herstellungsverfahren bei einem Verkäufer.
• • APDU - Anwendungsprotokolldateneinheit (Application Protocol Data Unit).
• • EUM - ein eUICC Hersteller (eUICC Manufacturer).
• • ICCID - Integrierte-Schaltungskarte-ID (Integrated Circuit Card Identifier)
  • - eine eindeutige Zahl, um ein eSIM innerhalb einer eUICC zu identifizieren.
• • IMSI - internationale mobile Teilnehmeridentität (International Mobile Subscriber Identity). Die IMSI ist ein eindeutiger Identifikator, der von den MNOs besessen und ausgegeben wird, die einen Benutzer identifiziert und die es mobilen Vorrichtungen ermöglicht, sich an ein Netzwerk anzuhängen und Dienste zu verwenden.
• • MCC - mobiler Ländercode (Mobile Country Code).
• • MNO - mobiler Netzwerkbetreiber (Mobile Netzwerk Operator). Ein MNO ist eine Einheit, die Zugriffsfähigkeit und Kommunikationsdienste Kunden durch eine mobile Netzwerkinfrastruktur bereitstellt.
• • OTA Plattform - Durch-Die-Luft-Plattform (Over the Air Platform). Eine MNO-basierte Plattform, die für entfernte Verwaltung der UICCs und aktivierte eSIMs auf eUICCs verwendet wird.
• • SIM - Teilnehmeridentitätsmodul (Subscriber Identity Module).
• • eSIM - elektronisches SIM. Ein eSIM ist ein software-basiertes SIM oder „soft SIM“. Das eSIM kann eine Kombination einer Datenstruktur, Daten und Anwendungen sein, die auf einer eUICC bereit zu stellen sind oder auf ihr vorhanden sind. Speziell erlaubt ein eSIM, wenn aktiviert, Zugriff auf eine spezifische mobile Netzwerkinfrastruktur.
• • SM-SR - Teilnahmeverwalter sicheres Weiterleiten (Subscription Manager Secure Routing).
• • UICC - universelle integrierte Schaltungskarte (Universal Integrated Circuit Card).
• • eUICC - eine eingebettete UICC (Embedded UICC).
• • USIM - universelles Teilnehmeridentitätsmodul (Universal Subscriber Identity Module). Ein USIM ist eine Netzwerkzugriffsanwendung (Network Access Application, NAA) für ein UMTS. Das USIM auf einer UICC kann Informationen beinhalten, die einen Teilnehmer identifizieren.

Terms relevant to the embodiments set forth herein are described as follows.

• • AID - Application Identifier that identifies an application within a UICC. The AID may include a registered application provider identifier (RID) of 5 bytes and a proprietary application identifier extension (PIX) of up to 11 bytes. An application's AID can be unique on a given UICC. The AID is determined during card provision, e.g. B. through a manufacturing process at a seller.
• • APDU - Application Protocol Data Unit.
• • EUM - an eUICC Manufacturer.
• • ICCID - Integrated Circuit Card Identifier
  • - a unique number to identify an eSIM within an eUICC.
• • IMSI - International Mobile Subscriber Identity. The IMSI is a unique identifier owned and issued by the MNOs that identifies a user and enables mobile devices to attach to a network and use services.
• • MCC - Mobile Country Code.
• • MNO - Mobile Network Operator. An MNO is an entity that provides access and communication services to customers through a mobile network infrastructure.
• • OTA Platform - Over the Air Platform. An MNO-based platform used for remote management of UICCs and enabled eSIMs on eUICCs.
• • SIM - Subscriber Identity Module.
• • eSIM - electronic SIM. An eSIM is a software-based SIM or "soft SIM". The eSIM can be a combination of data structure, data and applications to be provided or reside on an eUICC. In particular, an eSIM, when activated, allows access to a specific mobile network infrastructure.
• • SM-SR - Subscription Manager Secure Routing.
• • UICC - Universal Integrated Circuit Card.
• • eUICC - an embedded UICC.
• • USIM - Universal Subscriber Identity Module. A USIM is a Network Access Application (NAA) for a UMTS. The USIM on a UICC may include information identifying a subscriber.

In accordance with various embodiments described herein, the terms "wireless communication device," "wireless device," "mobile device," "mobile station," and "user equipment" (UE) may be used interchangeably herein to mean a or to describe a plurality of common consumer electronic devices that may be capable of performing methods associated with various embodiments of the disclosure. According to various implementations, any of these consumer electronic devices may refer to: a mobile phone or smartphone, a tablet computer, a laptop computer, a notebook computer, a personal computer, a netbook computer, a media player, an electronic A book device, a MiFi® device, a portable computing device, or any other type of electronic computing device that has wireless communication capability that may include communication over one or more wireless communication protocols, such as used for communication over: a wireless wide area network, WWAN), wireless metro area network (WMAN), wireless local area network (WLAN), wireless personal area network (WPAN), near field communication, NFC), a cellular wireless network, an advanced fourth generation (4G) cellular wireless network, LTE, LTE Advanced (LTE-A) and/or a 5G or other current or future developed advanced cellular wireless network.

The wireless communication device, in some embodiments, may also operate as part of a wireless communication system, which may include a set of client devices, which may also be referred to as stations, wireless client devices, or wireless client communication devices associated with an access point (access point, AP) are coupled, eg as part of a WLAN, and / or each other, eg as part of a WPAN and / or an "ad hoc" wireless network. In some embodiments, the client device may be any wireless communication device capable of communicating via WLAN technology, eg, in accordance with a wireless local area network communication protocol. In some embodiments, the WLAN technology may include a WiFi (or more generally, a WLAN) wireless communication subsystem or radio, where the WiFi radio may implement an Institute of Electrical and Electronics Engineers (IEEE) 802.11 technology, such as one or more of: IEEE802.11a; IEEE802.11b; IEEE802.11g; IEEE802.11-2007; IEEE802.11n; IEEE802.11-2012; IEEE802.11ac; or other current or future developed IEEE 802.11 technologies.

Additionally, it should be understood that the UEs described herein may be configured as multi-mode wireless communication devices that are also capable of communicating over different third generation (3G) and/or second generation RATs (Radio Access Technologies). Generation (2G) to communicate. In these scenarios, a multi-modal UE may be configured to prefer attachment to LTE networks that offer faster data rate throughput compared to other legacy 3G networks that offer lower data rate throughput. For example, in some implementations, a multi-mode UE may be configured to fallback to a legacy 3G network, e.g., an Evolved High Speed Packet Access (HSPA+) network or a Code Division Multiple Access (CDMA) 2000 Evolution-Data Only (EV-DO) Network when LTE and LTE-A networks are otherwise unavailable.

1 12 illustrates a block diagram of various components of a system 100 configured to implement the various techniques described herein, according to some embodiments. More specifically illustrated 1 A general overview of the system 100, which includes a mobile device 102, one or more base stations 112, and one or more MNOs 114, as shown. According to one embodiment, mobile device 102 represents a wireless communication device (eg, a smartphone, tablet, laptop, etc.) capable of communicating with at least one of MNOs 114 via at least one of base stations 112 . As in 1 As shown, the mobile device 102 may include a processor 104, memory 106, an eUICC 108, and a baseband processor 110. FIG. For example, eUICC 108 may represent a hardware component embedded within a system board of mobile device 102 configured to provide a more flexible environment than traditional, removable UICCs. As described in more detail below, the eUICC 108 may include a variety of hardware/software components that enable the eUICC 108 to manage eSIMs according to the techniques described herein.

2 12 illustrates a more detailed view 200 of mobile device 102 of FIG 1 according to one embodiment. As in 2 As shown, an OS of mobile device 202 and one or more applications 204 may be executed on mobile device 102 by processor 104 and memory 106 . 2 also illustrates the various hardware/software components previously described that are included in the eUICC 108. More specifically, the eUICC 108 may include a processor 210 and memory 212 that enable the eUICC OS 214 to execute within the eUICC 108 and enable it to manage one or more eSIMs 216 . According to this configuration, processor 104, processor 210, and baseband processor 110 may operate in conjunction with one another to enable mobile device 102 to access services provided by at least one of MNOs 114.

3A FIG. 3 illustrates a block diagram 300 of an eSIM 302 that includes an application data structure 304 and an application_1 306 and an application_2 308 . As in 3A As illustrated, application_1 306 and application_2 308 are identified by application identifiers AID_1 307 and AID_2 309, respectively. Application_1 306 and Application_2 308 may represent different applications provided by the MNO associated with the eSIM 302. Mobile device 102 can uniquely access either application_1 306 or application_2 308 via application identifiers AID_1 307 and AID_2 309 . As below with more detail in connection with 3C described, this accessibility capability allows mobile device 102 to access application data structure 304 appropriately.

3B Figure 3 illustrates a block diagram 350 of an eUICC 352 storing multiple eSIMs 216 used in 3B shown as eSIM_1 354 and eSIM_2 356. In this embodiment, the applications (not in 3B illustrated) associated with the eSIM_1 354 and the eSIM_2 356 are identified by the same application identifier AID_1 307 . Accordingly, an application in eSIM_1 354 and eSIM_2 356 can be the same application and the application can be provided by different MNOs. Regarding 3B the ICCID for eSIM_1 354 and eSIM_2 356 is the same. A conflict may exist if the baseband processor 110 reads the ICCID since a unique application identifier (hence application) cannot be identified. Accordingly, the application data structure 304 cannot be properly identified.

• • Zweckbestimmte Datei (Dedicated File, DF): Datei, die Zugriffsbedingungen und optional grundlegende Dateien (Elementary Files, EFs) oder andere zweckbestimmte Dateien (DFs) beinhaltet. DFs werden durch FIDs referenziert.
• • Zweckbestimmte Anwendungsdatei (Application Dedicated File, ADF): Eingangspunkt für eine Anwendung. Speziell ist eine Anwendungs-DF (ADF) eine bestimmte DF, die all die DFs und EFs einer Anwendung beinhaltet.
• • Grundlegende Dateien (Elementary Files, EFs): der gültige IMSI-Wert muss standardmäßig in der grundlegenden Datei der IMSI (EF IMSI) in dem SIM bei der Herstellung der SIM-Karte vorhanden sein.
• • Master-Datei (Master File, MF).

3C FIG. 3 illustrates a more detailed view 370 of the application data structure 304 for the eSIM 302 of FIG 3A . The file identifier (FID) is used to identify a specific cal file to address or identify. The file types included in 3C are included include:

• • Dedicated File (DF): File containing Access Conditions and optionally Elementary Files (EFs) or other Dedicated Files (DFs). DFs are referenced by FIDs.
• • Application Dedicated File (ADF): entry point for an application. Specifically, an application DF (ADF) is a specific DF that includes all the DFs and EFs of an application.
• • Elementary Files (EFs): the valid IMSI value must be present in the IMSI Elementary File (EF IMSI) by default in the SIM when the SIM card is manufactured.
• • Master File (MF).

Applications are uniquely identified by AIDs and retrieved from the EF _DIR . The AIDs are used to select the application. EF _DIR , EF _PL and EF _ICCID can be mandatory and can be filed directly under the MF. DF _TELECOM may be optional and, if present, is below the MF. DF _TELECOM may contain application-independent information.

4 (Prior Art) illustrates a timing diagram 400 for selecting an application of a specific eSIM included in an eUICC. The method begins with the baseband processor 110 of the mobile device 102 requesting a channel for communication. The eUICC 108 responds with a channel selection, eg, channel 1. The baseband processor 110 then sends a SELECT (AID) command requesting access to the application associated with the specified AID. The baseband processor 110 can then repeat the process to access another application; consequently, two parallel sessions can be active. The procedure can be successful, the right application in an eSIM with the structure included in 3A has been described to select. However, in the event that several eSIMs are present in one eUICC (e.g 3B) a conflict may arise as the applications may be the same. The application may have been issued by different MNOs and the eSIMs may have the same ICCID. Consequently, the method of 4 not identify the correct application file structure as the application identifiers may be the same, e.g. AID_1 307.

5A FIG. 5 illustrates a timing diagram 500 for selecting and accessing an application of an eSIM from multiple eSIMs that include the application. To begin, the baseband 110 transmits a SELECT (eSIM ID) command to the eUICC 108 identifying an eSIM and requesting access to the eSIM. In response, the eUICC may transmit a confirmation message (e.g., OK) indicating an active status. If the mobile device 102 is idle, the baseband processor 110 cannot access the eSIM. Due to MNO restrictions, only one eSIM can be active at a time. The SELECT (eSIM ID) can select the specific eSIM, eg eSIM_1 354 or eSIM_2 356. The P1/P2 that is in 5B illustrated, and described in more detail below, may include values specifying the type of SELECT command, eg, eSIM selection. To switch between eSIM_1 354 and eSIM_2 356, the baseband processor 110 may issue a "deselect" command, then make a new selection. For example, SELECT (P1, P2) may indicate to deselect a first eSIM and SELECT (P3, P4) may indicate to select a second eSIM.

When the eSIM is active, the baseband processor 110 may respond with a SELECT (AID_1 307) command, which represents a request for a specific application (and application file structure 304). After a positive response from the eUICC, the baseband processor 110 can send a SELECT (ICCID) to select the specific application. After a positive response from the eUICC, the baseband processor 110 can send a READ BINARY command to the eUICC. The Read Binary Response message may contain (part of) the content of an EF with transparent structure. Additionally, the eSIM may include a support lock that prevents an eUICC from being programmed to select a specific MNO. The support lock can limit the MCC-MNC selection.

5B Figure 5 illustrates the frame structure 550 that the timing diagram 500 supports. As in 5B shown, the frame structure 550 includes an APDU header and an eSIM ID. The APDU header includes the following frames: SELECT CLASS, INS (instruction code), P2/P2 and LEN (length). The APDU header is included in the standards for eUICC operation. The same INS codes as included in the standards are used in the timing diagram 500. For embodiments set forth herein, to provide unique identifications of the applications, P1/P2 frames are assigned specific values that are not included in the standards. Through this P1/P2 programming, the baseband processor 110 is able to implement the communication method described in the timing diagram 500 will implement. Accordingly, the baseband processor 110 can select and access the file associated with the application of interest. As previously mentioned, the eSIM is a combination of file structure, data and applications to be deployed or resident on an eUICC, which allows access to a specific mobile network infrastructure when activated.

1. 1. Übertragen eines SELECT (eSIM ID) Befehls an eine eUICC, um ein eSIM zu identifizieren - 572
2. 2. Nach dem Empfangen einer Bestätigung, Übertragen eines SELECT (AID1) Befehls an die eUICC, um eine Anwendung auszuwählen, die mit dem Identifikator „AID1“ verknüpft ist. - 574
3. 3. Nach dem Empfangen einer Bestätigung, Übertragen eines SELECT (ICCID) Befehls, um den ICCID zu bestätigen und um ein eSIM auszuwählen, einschließlich ihrer Dateistruktur (z.B. die Anwendungdateistruktur 304). -576
4. 4. Nach dem Empfangen einer Bestätigung, Übertragen eines READ BINARY Befehls, der an eine spezifische Datei gerichtet ist. - 578
5. 5. Empfangen der spezifischen Datei. - 580

5C FIG. 5 illustrates a flowchart 570 for a method relating to 5A and 5B relates. Specifically, the steps in the flowchart are implemented by baseband processor 110 and are performed as follows:

1. 1. Sending a SELECT (eSIM ID) command to an eUICC to identify an eSIM - 572
2. 2. After receiving an acknowledgment, transmit a SELECT (AID1) command to the eUICC to select an application associated with the identifier "AID1". - 574
3. 3. After receiving a confirmation, transmit a SELECT (ICCID) command to confirm the ICCID and to select an eSIM, including its file structure (eg, the application file structure 304). -576
4. 4. After receiving an acknowledgment, transmit a READ BINARY command directed to a specific file. - 578
5. 5. Receiving the specific file. - 580

Most importantly, this method is backwards compatible (transparent) with eUICCs designed according to standards. In particular, the eUICC OS can remember the last selected eSIM, where the eSIM ID selects the eSIM and where the P1/P2 encoding determines the particular type of SELECT command, e.g. a select command to select an eSIM.

6A FIG. 6 illustrates a block diagram 600 of an eUICC 602 that includes an eSIM_1 604 and an eSIM_2 606 . As in 6A As shown, each of eSIM_1 604 and eSIM_2 606 includes an application whose AID is "n", which illustrates problems that can arise when implementing eUICCs. Specifically, the different eSIMs may come from different uncoordinated sources, exemplified by eSIM Provider #1 608 (eg, AT&T) and eSIM Provider #2 610 (eg, T-Mobile). The different sources may use the same AIDs for applications contained in the eSIMs, which as described herein may cause conflicts when a particular application is accessed via its AID. As a result, a conflict may arise if the eUICC has multiple eSIMs with the same applications provided by different sources.

A solution to the aforementioned problem is shown as block diagram 650 in 6B illustrated. As in 6B As shown, the block diagram 650 includes an eUICC 672 that includes an eSIM_i 674 and an eSIM_2 676. Each of these eSIMs supports the same application and AID, ie according to 6B : APP, AID = n. Here the eUICC OS 678 is set up to enable the transmission of application information to an endpoint 680 (e.g. the baseband processor 110 in 1 ) by the identifier of the eSIM (e.g. eSIM ID) and the identifier of the application (AID). More specifically, the eUICC OC 678 is set up to establish a logical channel using (eSIM ID, AID). These logical channels eliminate the potential conflicts set forth herein that would otherwise arise.

The embodiment of block diagram 650 may support a number of features. AIDs within the same eSIM are unique, i.e. guaranteed by the eSIM provider, similar to old UICC. However, AIDs of different eSIMs can be duplicated on the eUICC under different eSIMs. AID conflicts can be avoided with eUICC OS 678 handling. An application must first select its associated eSIM on a given logical channel before the applications can be selected. As a result, the eUICC OS 678 can know which eSIM is associated with that AID on a given logical channel. Each application is uniquely identified by the command (eSIM ID, AID). Endpoints are aware of the different eSIMs on the eUICC via an eSIM ID. In another embodiment, multiple eSIMs can be activated on an eUICC using multiple logical channels. Each logical channel can simultaneously select a different MNO. Accordingly, the mobile device 102 can access two or more MNOs at the same time.

1. 1. Verknüpfen eines eSIM mit einem spezifischen logischen Kanal. - 672
2. 2. Verknüpfen eines AID mit dem eSIM. - 674
3. 3. Anweisen eines mobilen Endpunkts (z.B. der mobile Endpunkt 680 der 6B) auf den AID über den logischen Kanal mit dem {eSIM ID, AID} Befehl, der hierin dargelegt wird, zuzugreifen. Der Endpunkt 680 kann das Äquivalent des Basisbandprozessors 110, der in 1 veranschaulicht wird und zuvor im Detail beschrieben wurde, sein. - 676

6C FIG. 6 illustrates a flowchart 670 for a method relating to 6A and 6B relates. The procedure includes the following steps, which are defined by the eUICC OS 678 of the 6B are executed:

1. 1. Associate an eSIM with a specific logical channel. - 672
2. 2. Linking an AID to the eSIM. - 674
3. 3. Instruct a mobile endpoint (e.g. the mobile endpoint 680 of the 6B) on the AID access via the logical channel with the {eSIM ID, AID} command set forth herein. The endpoint 680 can be the equivalent of the baseband processor 110, which is used in 1 illustrated and previously described in detail. - 676

7 FIG. 7 illustrates a detailed view of a computing device 700 that may be used to implement the various components described herein, according to some embodiments. In particular, the detailed view illustrates various components that are included in the mobile device 102 shown in 1 illustrated may be included. As in 7 As shown, computing device 700 may include a processor 702, which may be a microprocessor or controller, for controlling overall operation of computing device 700. The computing device 700 may also include a user input device 708 that allows a user of the computing device 700 to interact with the computing device 700 . For example, user input device 708 may take a variety of forms, such as a button, keyboard (keypad), rotary switch, touch screen, audio input interface, visual/image capture input interface, input in the form of sensor data, etc. Still further, computing device 700 may be a Display 710 (on-screen display) that can be controlled by processor 702 to display information to the user. A data bus 716 may facilitate data transfer between at least one storage device 740, the processor 702, and a controller 713. The controller 713 can be used to interface with and control various equipment through an equipment control bus 714 . The computing device 700 may also include a network/bus interface 711 that couples to a data link 712 . In the case of a wireless connection, network/bus interface 711 may include a wireless transceiver.

The computing device 700 also includes a storage device 740, which may comprise a single storage device or a plurality of storage devices, and includes a storage management module that manages one or more partitions within the storage device 740. In some embodiments, storage device 740 may include flash memory, semiconductor (solid state) memory, or the like. The computing device 700 may also include a random access memory (RAM) 720 and a read only memory (ROM) 722 . The ROM 722 can store programs, utilities, or methods to be executed in a non-volatile manner. RAM 720 may provide volatile data storage and stores instructions related to the operation of the various software methods described herein. The computing device 700 may further include a secure element 750, which may represent the eUICC 108 defined in 1 and 2 is illustrated and described in detail herein.

The various aspects, embodiments, implementations, or features of the described embodiments may be used separately or in any combination. Various aspects of the described embodiments can be implemented by software, hardware, or a combination of hardware and software. The described embodiments may also be embodied in computer-readable code on a computer-readable medium. The computer-readable medium is any data storage device that can store data that can thereafter be read by a computing system. Examples of computer-readable media include read-only memories, random access memories, CD-ROMs, DVDs, magnetic tape, hard drives, solid-state drives, and optical data storage devices. The computer-readable code on the computer-readable medium can also be distributed across network-coupled computer systems such that the computer-readable code is stored and executed in a distributed manner.

The foregoing description, for purposes of explanation, used specific nomenclature to provide a thorough understanding of the described embodiments. However, it will be apparent to those skilled in the art that specific details are not necessary in order to practice the described embodiments. Accordingly, the foregoing descriptions of specific embodiments are presented for purposes of illustration and description. They are not intended to be exhaustive or to limit the described embodiments to the precise forms disclosed. It will be apparent to those skilled in the art that many modifications and variations are possible in light of the above teachings.

Claims (14)

Method for accessing applications of electronic subscriber identity modules (eSIMs) carried by an embedded universal integrated circuit card (embedded universal integrated circuit card, eUICC), the method comprising: at the eUICC: receiving, from a baseband processor, a request to access an application of a first eSIM managed by the eUICC, the application being identified with an application identifier AID) shared by an application of a second eSIM; and in response to the request: assigning, to the first eSIM, a logical channel corresponding to both: an eSIM identifier (eSIM ID) associated with the first eSIM and the AID; and enabling the baseband processor to access the application of the first eSIM via the logical channel, wherein the baseband processor simultaneously accesses applications of multiple active eSIMs within the eUICC using different logical channels. procedure after claim 1 , where each application of the first eSIM is associated with a unique AID. procedure after claim 1 or 2 , whereby each eSIM managed by the eUICC is associated with a unique eSIM ID. Procedure according to one of Claims 1 until 3 wherein, to access the application of the first eSIM, the baseband processor issues a SELECT (eSIM ID, AID) command over the logical channel that includes an application protocol data unit (APDU) header and wherein the APDU header includes P1 and P2 fields specifying an item to be selected. Procedure according to one of Claims 1 until 4 , whereby at least two eSIMs are active within the eUICC at the same time. Procedure according to one of Claims 1 until 3 , wherein, the baseband processor simultaneously accesses i) the application of the first eSIM using a SELECT (eSIM ID, AID) command with the eSIM ID of the first eSIM and the AID shared with the application of the second eSIM, and ii ) the application of the second eSIM using the SELECT (eSIM ID, AID) command with the eSIM ID of the second eSIM and the AID shared with the application of the first eSIM. Mobile device comprising: An embedded universal integrated circuit card (eUICC) that manages electronic subscriber identity modules (eSIMs); a baseband processor; at least one memory configured to store instructions that, when executed by the baseband processor, cause the baseband processor to perform steps including: instructing the eUICC to assign a first logical channel to a first eSIM and to assign a second logical channel to a second eSIM, each of the first eSIM and the second eSIM containing an application associated with a same application identifier (AID); Issue a command to the eUICC that includes both: an eSIM identifier (eSIM ID) IM-linked to the first eS, as well as the AID; and accessing, using the first logical channel, the application included in the first eSIM, wherein the baseband processor simultaneously accesses applications of multiple active eSIMs within the eUICC using different logical channels. Mobile device behind claim 7 , wherein the AID is unique among other AIDs associated with different applications of each of the first eSIM and the second eSIM. Mobile device according to one of Claims 7 or 8th , where each eSIM managed by the eUICC is associated with a unique eSIM ID. Mobile device according to one of Claims 7 until 9 , wherein the command comprises a SELECT (eSIM ID, AID) command. Mobile device behind claim 10 , wherein the SELECT (eSIM ID, AID) command includes an application protocol data unit (APDU) header comprising P1 and P2 fields specifying an element within the eUICC to be selected . Mobile device after any of the Claims 7 until 11 , whereby at least two eSIMs are active within the eUICC at the same time. Mobile device according to one of Claims 7 until 10 , wherein the baseband processor simultaneously accesses i) an application of the first eSIM using a SELECT (eSIM ID, AID) command with the eSIM ID of the first eSIM and the AID shared with the application of the second eSIM, and on ii) the application of the second eSIM using the SELECT (eSIM ID, AID) command with the eSIM ID of the second eSIM and the AID shared with the application of the first eSIM is shared. A non-transitory, computer-readable storage medium comprising instructions that, when executed by a mobile device, cause the mobile device to perform the method of any one of Claims 1 until 6 to execute.

Images